Microsoft Windows 11 Version 23H2 vulnerabilities

1,660 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs

1,660

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL25HIGH1170MEDIUM457LOW8

Vulnerabilities

SortPage 19 of 83

CVE-2026-20864P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.64912026-01-13

CVE-2026-20864 [HIGH] CWE-122 CVE-2026-20864: Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attac Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-21239P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.66492026-02-10

CVE-2026-21239 [HIGH] CWE-122 CVE-2026-21239: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges loc Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-21236P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.66492026-02-10

CVE-2026-21236 [HIGH] CWE-122 CVE-2026-21236: Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized att Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-33841P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-33841 [HIGH] CWE-122 CVE-2026-33841: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges loc Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-40377P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-40377 [HIGH] CWE-122 CVE-2026-40377: Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevat Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-26180P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-26180 [HIGH] CWE-122 CVE-2026-26180: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges loc Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-26634P3HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.48902025-03-11

CVE-2025-26634 [HIGH] CWE-122 CVE-2025-26634: Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privil Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.

nvd

CVE-2026-26178P3HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-26178 [HIGH] CWE-190 CVE-2026-26178: Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized att Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized attacker to elevate privileges locally.

nvd

CVE-2025-47986P3HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.56242025-07-08

CVE-2025-47986 [HIGH] CWE-416 CVE-2025-47986: Use after free in Universal Print Management Service allows an authorized attacker to elevate privil Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-58715P3HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-58715 [HIGH] CWE-190 CVE-2025-58715: Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-58716P3HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-58716 [HIGH] CWE-20 CVE-2025-58716: Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privi Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-21255P3HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.66492026-02-10

CVE-2026-21255 [HIGH] CWE-284 CVE-2026-21255: Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security featur Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally.

nvd

CVE-2025-54098P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.59092025-09-09

CVE-2025-54098 [HIGH] CWE-284 CVE-2025-54098: Improper access control in Windows Hyper-V allows an authorized attacker to elevate privileges local Improper access control in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-60705P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.61992025-11-11

CVE-2025-60705 [HIGH] CWE-284 CVE-2025-60705: Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker t Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-59517P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.63452025-12-09

CVE-2025-59517 [HIGH] CWE-284 CVE-2025-59517: Improper access control in Windows Storage VSP Driver allows an authorized attacker to elevate privi Improper access control in Windows Storage VSP Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2024-30089P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.37372024-06-11

CVE-2024-30089 [HIGH] CWE-416 CVE-2024-30089: Microsoft Streaming Service Elevation of Privilege Vulnerability Microsoft Streaming Service Elevation of Privilege Vulnerability

nvd

CVE-2026-42986P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.72192026-06-09

CVE-2026-42986 [HIGH] CWE-416 CVE-2026-42986: Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges l Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-53149P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.57682025-08-12

CVE-2025-53149 [HIGH] CWE-122 CVE-2025-53149: Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacke Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-20940P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.64912026-01-13

CVE-2026-20940 [HIGH] CWE-822 CVE-2026-20940: Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker t Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-26128P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.67832026-03-10

CVE-2026-26128 [HIGH] CWE-287 CVE-2026-26128: Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges lo Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.

nvd

← Previous19 / 83Next →